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Devadas 

November 2006 Proceedings of the first ACM workshop on Scalable trusted computing 
STC '06 

Publisher: ACM Press 

Full text available: ^ pdf(447.59 KB) Additional Information: full citation , abstract , references , index terms 

A trusted monotonic counter is a valuable primitive that enables a wide variety of highly 
scalable offline and decentralized applications that would otherwise be prone to replay 
attacks, including offline payment, e-wallets, virtual trusted storage, and digital rights 
management (DRM). In this paper, we show how one can implement a very large number 
of virtual monotonic counters on an untrusted machine with a Trusted Platform Module 
(TPM) or similar device, without relying on a trusted OS ... 
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In this work we design and Implement ESCORT, a backward compatible, efficient, and 
secure access control system, to facilitate mobile wireless access to secured wireless 
LANs. In mobile environments, a mobile guest may frequently roam into foreign domains 
while demanding critical network services. ESCORT provides instant yet secure access to 
the mobile guest based on the concept of "escort'\ which refers to a special network 
object with four distinct properties: (1) T ... 
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Februan^ 2006 ACM Transactions on Computer Systems (TOCS), volume 24 issue i 
Publisher: ACM Press 

Full text available: ^ pdf(669.12 KB ) Additional Information: full citation , abstract , references , index terms 

Cryptographic transformations are a fundamental building block In many security 
applications and protocols. To Improve performance, several vendors market hardware 
accelerator cards. However, until now no operating system provided a mechanism that 
allowed both uniform and efficient use of this new type of resource. We present the 
OpenBSD Cryptographic Framework (OCF), a service virtualization layer implemented 
Inside the operating system kernel, that provides uniform access to accelerator functio 

Keywords: Encryption, authentication, cryptographic protocols, digital signatures, hash 
functions 
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Mark D. Corner, Brian D. Noble 

May 2003 Proceedings of tlie 1st international conference on Mobile systems, 
applications and services MobiSys '03 

Publisher: ACM Press 

Full text available: ^ pdf(294.40 KB) Additional Information: full citation , abstract , references , cited b y 

How does a machine know who is using it? Current systems authenticate their users 
infrequently, and assume the user's identity does not change. Such persistent 
authentication is inappropriate for mobile and ubiquitous systems, where associations 
between people and devices are fluid and unpredictable. We solve this problem with 
Transient Authentication, in which a small hardware token continuously authenticates the 
user's presence over a short-range, wireless link. We present the fo ... 

Security as a new dinnension in embedded system design: Security as a new | 
dimen£>ion in embedded system design 

Srivaths Ravi, Paul Kocher, Ruby Lee, Gary McGraw, Anand Raghunathan 

June 2004 Proceedings of the 41st annual conference on Design automation DAC '04 

Publisher: ACM Press 

Full text available: ^ pdf(209.10 KB ) Additional Information: full citation , abstract, references , citings, index 

The growing number of instances of breaches in information security in the last few years 
has created a compelling case for efforts towards secure electronic systems. Embedded 
systems, which will be ubiquitously used to capture, store, manipulate, and access data of 
a sensitive nature, pose several unique and interesting security challenges. Security has 
been the subject of intensive research in the areas of cryptography, computing, and 
netv/orklng. However, despite these efforts, security is ... 

Keywords: PDAs, architectures, battery life, cryptography, design, design 
methodoiogies, digital rights management, embedded systems, performance, security, 
security processing, security protocols, sensors, software attacks, tamper resistance, 
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Distributed operatin g systems 
Andrew S. Tanenbaum, Robbert Van Renesse 
December 1985 ACM Computing Surveys (CSUR), volume 17 issue 4 

Publisher: ACM Press 

Full text available:tg| pdf(5.49MB) Additional Information: full citation , abstrast, references , sitings, index 

^^^^^"^^ terms , review 

Distributed operating systems have many aspects in common with centralized ones, but 
they also differ in certain ways. This paper is intended as an introduction to distributed 
operating systems, and especially to current university research about them. After a 
discussion of what constitutes a distributed operating system and how it is distinguished 
from a computer network, various key design issues are discussed. Then several 
examples of current research projects are examined in some detail ... 

8 Fast detection of communication patterns in distributed executions 
Thomas Kunz, Michiel F. H. Seuren 

November 1997 Proceedings of the 1997 conference of the Centre for Advanced 
Studies on Collaborative research CASCON '97 

Publisher: IBM Press 

Full text available: ^ pdf ( 4.21 MB ) Additional Information: full citation , abstract , references , index terms 

Understanding distributed applications is a tedious and difficult task. Visualizations based 
on process-time diagrams are often used to obtain a better understanding of the 
execution of the application. The visualization tool we use Is Poet, an event tracer 
developed at the University of Waterloo. However, these diagrams are often very complex 
and do not provide the user with the desired overview of the application. In our 
experience, such tools display repeated occurrences of non-trivial commun ... 

® A structural view of tlie Cedar programming environment 

Daniel C. Swinehart, Polle T. Zellweger, Richard J. Beach, Robert B. Hagmann 
August 1986 ACI^ Transactions on Programming Languages and Systems (TOPLAS), 

Volume 8 Issue 4 
Publishier: ACM Press 

^ •■ ui 01 oo KMDK Additional Information: full citation , abstract , references , citin gs , index 

Full text available: TO pdf(6.32 MB ) ^ 
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This paper presents an overview of the Cedar programming environment, focusing on its 
overall structure— that is, the major components of Cedar and the way they are 
organized. Cedar supports the development of programs written in a single programming 
language, also called Cedar. Its primary purpose is to increase the productivity of 
programmers whose activities include experimental programming and the development of 
prototype software systems for a high-performance personal computer. T ... 

10 Ex ploiting perception in high-fidelity virtual environments: Exploiting perception in 

hig h-fidelity virtual environments 

Additional presentations from the 24th course are available on the citation 

p>age 

Mashhuda Glencross, Alan G. Chalmers, Ming C. Lin, Miguel A. Otaduy, Diego Gutierrez 
July 2006 ACM SIGGRAPH 2006 Courses SIGGRAPH '06 

Publisher: ACM Press 
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The objective of tiiis course is to provide an introduction to tlie issues that must be 
considered when building high-fidelity 3D engaging shared virtual environments. The 
principles of human perception guide important development of algorithms and 
techniques in collaboration, graphical, auditory, and haptic rendering. We aim to show 
how human perception is exploited to achieve realism in high fidelity environments within 
the constraints of available finite computational resources.In this course w ... 

Keywords: collaborative environments, haptics, high-fidelity rendering, human-computer 
interaction, multi-user, networked applications, perception, virtual reality 
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August 1989 ACM Transactions on Computer Systems (IOCS), volume i issue 3 
Publisher: ACM Press 

Full text available- ■g| pdf(2 90 MB) Additional Information: full citation, abstract, references, dtings, index 

' terms, review 

Andrew is a distributed computing environment that is a synthesis of the personal 
computing and timesharing paradigms. When mature, it is expected to encompass over 
5,000 workstations spanning the Carnegie Mellon University campus. This paper examines 
the security issues that arise in such an environment and describes the mechanisms that 
have been developed to address them. These mechanisms include the logical and physical 
separation of servers and clients, support for secure communication ... 

12 Pioneer: verifying code integ rit y and enforcing untampered code execution on leg acy Q 
^ sy steals 

^ Arvind Seshadrl, Mark Luk, Elaine Shi, Adrian Perrlg, Leendert van Doom, Pradeep Khosia 
October 2005 ACM SIGOPS Operating Systems Review , Proceedings of the twentieth 
ACM symposium on Operating systems principles SOSP '05, volume 39 issue 

5 

Publisher: ACM Press 

I- II * ^ I ui 01 Mt^t-A nrs i^D\ Additional Information: full citation , abstract , references , citing s, index 

Full text available: TO pdf(264.3Q KB) ^ ^- 
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We propose a primitive, called Pioneer, as a first step towards verifiable code execution 
on untrusted legacy hosts. Pioneer does not require any hardware support such as secure 
co-processors or CPU -architecture extensions. We implement Pioneer on an Intel Pentium 
IV Xeon processor. Pioneer can be used as a basic building block to build security 
systems. We demonstrate this by building a kernel rootkit detector. 

Key words: dynamic root of trust, rootkit detection, self-check-summing code, software- 
based code attestation, verifiable code execution 
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Joe Armstrong 

June 2007 Proceedings of the third ACM SIGPLAN conference on History of 



programming languages HOPL III 

Publisher: ACM Press 

Full text available: Q pdf(446.07 KB) Additional Information: full citation , abstract , references , index terms 

Eriang was designed for writing concurrent programs that "run forever." Eriang uses 
concurrent processes to structure the program. These processes have no shared memory 
and communicate by asynchronous message passing. Eriang processes are lightweight 
and belong to the language, not the operating system. Eriang has mechanisms to allow 
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programs to change code "on the fly" so that programs can evolve and change as they 
run. These mechanisms simplify the construction of software for implementing ... 

14 Design and Implementation of the AEGIS Single-Chip Secure Processor Using 
^ Physical Random Functions 

^ G. Edward Suh, Charles W. O'Donnell, Ishan Sachdev, Srinivas Devadas 

May 2005 ACM SIGARCH Computer Architecture News , Proceedings of the 32nci 

annuai international symposium on Computer Architecture ISCA '05, volume 

33 Issue 2 

Publisher: IEEE Computer Society, ACIVI Press 

Full text available: ^ pdf(288.96 KB ) Additional Information: full citation , abstract , index terms 

Secure processors enable new applications by ensuring private and authentic program 
execution even in the face of physical attack. In this paper we present the AEGIS secure 
processor architecture, and evaluate Its RTL implementation on FPGAs. By using Physical 
Random Functions, we propose a new way of reliably protecting and sharing secrets that 
is more secure than existing solutions based on non-volatile memory. Our architecture 
gives applications the flexibility of trusting and protecting only ... 

Techniques for trusted software en g ineerin g | 
Premkuimar T. Devanbu, Philip W-L Pong, Stuart G. Stubblebine 

April 1998 Proceedings of the 20th international conference on Software engineering 
ICSE '98 

Publisher: IEEE Computer Society 
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IP Easy- pass: a li g ht-weight network-ed g e resource access control 
Hainlng Wang, Abhijit Bose, Mohamed El-Gendy, Kang G. Shin 
December 2005 IEEE/ACM Transactions on Networicing (TON), volume i3 issue 6 

Publisher: IEEE Press 

Full text available: ^ pdf(721.97 KB) Additional Information: full citation , abstract , references , index terms 

Providing real-time conimunication services to multimedia applications and subscription- 
based Internet access often requires that sufficient network resources be reserved for 
real-time traffic. However, the reserved network resource is susceptible to resource theft 
and abuse. Without a resource access control mechanism that can efficiently differentiate 
legit:lmate real-time traffic from attacking packets, the traffic conditioning and policing 
enforced at Internet Service Provider (ISP) edge route ... 

Keywords: network QoS, resource access control 




17 Pen computin g : a technology overview and a vision 
^ Andre Meyer 

>/ July 1995 ACM SIGCHI Bulletin, volume 27 issue 3 
Publisher: ACM Press 

Full text available: ^ pclf(5.14 MB) Additional Information: full citation , abstract , citings , index terms 

This work gives an overview of a new technology that is attracting growing interest in 
public as well as in the computer Industry itself. The visible difference from other 
technologies is in the use of a pen or pencil as the primary means of interaction between 
a user and a machine, picking up the familiar pen and paper interface metaphor. From 
this follows a set of consequences that will be analyzed and put into context with other 
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WASH/CGI is an embedded domain-specific language for server-side Web scripting. Due 
to its reliance on the strongly typed, purely functional programming language Haskell as a 
host language, it is highly flexible and— at the same time— It provides extensive 
guarantees due to its pervasive use of type information. WASH/CGI can be structured into 
a number of sublanguages addressing different aspects of the application. The document 
sublanguage provides tools for the generation of parameter! ... 
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